Under attack not triggered by bots

  • Hi, I’m currently testing NinjaFirewall on few sites and I’m impressed with the plugin. But I tested performance with simulated brute-force attack and I found out, that CPU usage spiked quite higher when bot detection was enabled.

    Without bot detection enabled it triggered lockdown and in the log was few bot requests and notification about lockdown. But with the bot detection enabled there is written every single request blocked.

    Doesn’t it make sense to bots also trigger lockdown and prevent too many writes?

Viewing 1 replies (of 1 total)
  • Plugin Author nintechnet

    (@nintechnet)

    When you enable the bot detection, it will log every request. That will use more CPU than without it, but that should still use way less CPU than without NinjaFirewall.
    If you face a massive attack, disable the bot protection. But nowadays, massive attacks are very seldom, unlike a few years ago. Lately, hackers run slow attacks and that’s why we added the bot detection as it can help a lot to get rid of them.

Viewing 1 replies (of 1 total)
  • The topic ‘Under attack not triggered by bots’ is closed to new replies.